I am searching for a selfhosted and secure (end to end encryption) chat platform for my family (5-20 users), possibly one i can host on a raspi.
Is matrix a good choice, or should i try something else?
You must log in or register to comment.
Matrix is fine but quite slow. Has excellent clients and is feature rich.
There’s also an app called Circles that turns your Matrix chats into a social feed.
XMPP is fine but the available clients are outdated and ugly.
Session is also self-hostable and anonymous.
Matrix is slow on large instances, but that’s not the case here, especially if no federation is done.
And the issue with sluggishness is currently the main development focus with ElementX/matrixX that will become mainstream matrix soon. With that even the large instances are extremely fast.
Matrix is slow everywhere. Anyone who says otherwise is lying. Element X is also super slow. Waiting 5-10 secs for messages to appear every time I open the app. I know what I’m talking about.
And on which instance did you experience that?
All of them
Thanks for confirming that you’re full of shit.
Because there are very very few Sliding Synch (which is the part of X that makes it faster) instances at the moment and only one that has a major userbase…
Not true about xmpp in general. There are modern clients out there.
Prove it
https://gajim.org/post/2024-06-10-gajim-1.9.0-released/ looks great these days. Give it a try.
https://movim.eu is also a really nice looking modern webclient
Gajim looks like it runs on windows XP. Movim does not appear to be a client.
Lol, what? Did you download an old version or are you just trolling?
And of course Movim is a client, a web-client like I wrote.
I don’t see anywhere to access a Movim web client, only to start your own server. Also no screenshots anywhere that shows what it looks like.
There are literally multiple big screenshots on the page I linked and a big join button that brings you to https://join.movim.eu where you can chose an instance.
Just for reference, here are my favourites on each platform.
Each support modern XMPP extensions, interoperate very nicely with each other, and (at least in my opinion) look good!
- Android: Conversations
- iOS: Siskin
- Windows & Linux: Dino
- Mac OS: Beagle IM
- Web: Converse JS
I just have my kids, wife, close friends and in-laws on SimpleX.
Sure, some of them use mainstream stuff as well, but if they want to reach me, that’s their only option.
Matrix is a pretty good choice for self-hosted. The reason I don’t do it is because I’ve become lazy lately.
Matrix has issues and can be a pain
Matrix is good, secure, very versatile, Foss, and easy to use, but I think not easy to set up or manage.
For me you can try to host a SimpleX server and then connect to it (with SimpleX it is pretty as much secure to run its one server than use a public one).
Or maybe use XMPP but try to use a good encryption protocol. This option is great in term of power efficiency, XMPP would run great on a RasPI
Simplex chat would work
However, I wouldn’t host on a Raspberry Pi or even at home for that matter. Get a VPS and host it there. Linode even has a one click app install for Simplex Chat
Why not host at home?
To much risk and you won’t have as much uptime.
Whats the risk? My uptime is pretty good and I host from home.
You could try Jami. It’s peer to peer, so essentially any participants are self-hosting it. Its E2E encrypted, supports group messaging, voice and video calling, has easily ‘linkable’ mobile and desktop apps for all platforms and requires no email address or phone number to use. It’s also the only messenger I’m aware of which is endorsed by the Free Software Foundation. I highly recommend it 👌
XMPP. It just works, requires very little resources, is stable and has decent clients.
I would go with Snikket instead of Prosody if I had been starting now.
Conversations on phones, Dino or Gajim on PCs, plus a conversejs install on the xmpp server, to allow web access when needed.
Conversations is easy for the family to figure out.
This is what my family (and a few friends) use. We have been using it for a while now because it just works. Also, the kids have never complained about using Conversations, or about using it only for us (like if you have that one family member who won’t leave SMS behind - we’re that guy, I guess), and we can make as many channels as we need for the house, the kids, with each kid individually, for our MTG cards, with our couple of friends that use it, etc…
I don’t personally do the hosting, so I can’t speak to that. That’s the hubby’s thing
¯\_(ツ)_/¯XMPP if you are loving the 90’s
IP was invented in the '70s. Sometimes older protocols that work are just fine.
Same with email.
Sick burns
Fine is a relative word
Any particular problems you’re having or have you briefly used Pidgin in 2008 and think nothing has improved since then?
What’s your problem with xmpp?
It is text only for the most part
It’s not. Emoji reactions, stickers, audio-messages, audio/video calls are all supported by modern XMPP clients with smaller caveats depending on the client.
three main ones I’ve seen in this comment section are
• XMPP
• Matrix
• SimpleX
So all of these encrypt the conversations so not even the server admin can access them?
no idea, I’ve just seen these in the comments
XMPP only does it with certain client extensions. And Matrix only does it when the rooms are set up this way. SimpleX does what you want, but is kind of unintuitive for the average user.
I say go with Signal, it does what you want and is idiot-proof.To be fair, pretty much all major XMPP clients have adopted OMEMO encryption, so doesn’t seem like much of an issue.
It is literally one setting in Matrix to force all rooms to only do encrypted messages.
Signal is pretty unintuitive when it comes to multiple devices per user, device transfers after a device has been lost,etc.
Signal is perfectly good under normal usage. Everything is unintuitive when it comes to extremes like losing your device.
Wouldn’t say that. With most Matrix Clients, WhatsApp, etc. it’s far easier. Especially from a perspective of a elderly,less tech adept user.
Signal is annoying to use if you don’t have a smartphone you can trust, since they do not allow registration from desktop. So either an Android VM or Signal-cli. But maybe it was just a one-off bug that the desktop client didn’t bind to signal-cli for me. Still, the fact that you need an unofficial command-line application just to register makes it not exactly user-friendly.
I imagine that most people’s families will find Singal easier than using a CLI program anyway. It’s rare to find an entire family without typical cellphones.
Yea, but a typical cellphone is not as easy to make private as a typical laptop or desktop. Lineage has some tradeoffs and not accessible on all devices, and Graphene needs even more specific, quite expensive hardware!
I’ve been using matrix for years to this purpose, but moving to xmpp/prosody now
What clients will you use for xmpp/prosody?
Gajim on pc (I use arch btw - well endeavourOS because I can’t be bothered) and don’t remember what on android (there is the full list or clients and capabilities on xmpp.org)
The easiest is to use the clients officially rebranded for Snikket, but there is a good overview on modern clients on https://joinjabber.org
Can I ask why you’re switching?
No.
Yeah ok. First of all, because I can 😁. I mean z what’s good being an IT nerd if I can’t change stuff when I want?
Jokes aside, I’ve been reading more recently on matrix and looks like there are some security issues in the design of the app/protocol. I’m on mobile now, I’ll look for sources when I’m on pc. Also I don’t like that it is a server centric system (so data is primarily on the server instead of the clients). Also it takes more resources than I was expecting. For less than 10 users I can’t have less than 4gb of ram (on a dedicated debian server, running docker) or it swaps so much it kills the system.
So basically I’m testing out if xmpp is a better system for those issues.
Conversations being paid on the google play store is what’s stopping me from going xmpp… I can’t just say “message me via xmpp, you can use the Conversations app”. Now I’d have to explain what F-Droid is and why would they even get another app store and enable “unknown apps”. it’s not doable. I remember telling my mom to install Signal (before I got into self hosting) because I deleted whatsapp and she got angry like she worked for the zuck, saying “what do you mean you don’t use whatsapp” with an astonished face, started lecturing me on why I was destroying my social life… That just made me realize right now they probably wouldn’t download conversations either…welp I just wanted to share
I know exactly what you mean. Just for general information, I’ve found another android client that I think it’s better than Conversations. It’s called Monocles chat (and it’s on f-droid). On matrix/xmpp I install the whatsapp bridge. I can convert a few close family members but no way everyone. For me it’s an acceptable compromise. I get the close members to use my servers/apps, everyone else through the bridge so I can at least have all the chat in one place
How do you convince your family/friends to switch to a new app on their smartphone and use one just to talk with you/others in the crew?
Frienda no, but I do use whatsapp bridges so I can have all conversations in one place.
Family with extreme nagging, and because I’m the IT guy of the house so they kinda trust me/can’t be bothered to try and out-talk me.
WhatsApp bridge? How does it work?
The chat server (matrix and xmpp have different ones, but same functionality) that act like a whatsapp desktop client. Have you ever run whatsapp desktop client on your pc, where you have to pair it with your phone? Same thing, but you do it withing a special “bridge” (usually as a bot) in matrix or xmpp. So you get all the messages in one place. But it doesn’t work for calls, just for messages.
My dad suggested me this after i told him about the new upload filters the eu is thinking about. Here is a link to a german blog post about it: https://netzpolitik.org/2024/anlasslose-massenueberwachung-frankreich-wackelt-in-der-ablehnung-der-chatkontrolle/#dokument
Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I’ve seen in this thread:
Fewer Letters More Letters IP Internet Protocol RPi Raspberry Pi brand of SBC SBC Single-Board Computer VPS Virtual Private Server (opposed to shared hosting) XMPP Extensible Messaging and Presence Protocol (‘Jabber’) for open instant messaging
4 acronyms in this thread; the most compressed thread commented on today has 12 acronyms.
[Thread #809 for this sub, first seen 16th Jun 2024, 15:45] [FAQ] [Full list] [Contact] [Source code]
I know it’s not self hosted but why not Signal? Matrix is demanding on a SBC and your family would probably get the ‘unable to decrypt message, please re-verify keys’ error that happens in encrypted matrix group chats and Element does not have the best UI especially if you want your grandma to use it.
What’s your source on the reverify thing? I use matrix a lot, and this hasn’t been an issue I ever experienced anymore since they introduced cross-signing a couple years ago.
Same goes for the common clients such as element. It has been clunky in the past, but after the past major overhauls ( also years ago now) everything has been silky smooth for me, if not better than others. The one thing left I prefer from Signal is the one-time photo share.
Matrix is great, clients are great too, only the server part still is annoyingly complicated and messy. Would only recommend that for tinkerers, on that case it’s a great path to learning about the complexity of addressing lots of security concerns that others gloss over.
i had slightly issues with the failed to decrypt on element, just on a chat where the other person left
Very unlikely by now, these issues have been adressed a while ago.
XMPP is fantastic IMHO
If you want to support a great project and have great uptime check out conversations.im
I don’t recommend self hosting something you want available all the time. That being said everyone has different needs/uses 😊
E2E is complicated, if you self-host for a group, having TLS and encrypting data at rest (storage) may be enough. Get a threat model. That being said, I would recommend snikket.org which is a superset of extensions over XMPP which is the open source IM that was the base of almost every app out there. Matrix and Rocket are both alright too. Depends too on your resources, synapse requires too much RAM (or so I heard)
Yes, XMPP with proper TLS on the server side and Conversations or one of its forks (preferably fetched from F-Droid) using OMEMO encryption should be good enough. If you are brave or paranoid, give Tox a try: https://tox.chat/
Except tox’s graphical clients aren’t mainteined anymore
Rocket chat is like slack but FOSS… haven’t tried it myself but it could be something
Not FOSS anymore. More like open core these days.
Not E2EE though, or at least not fully.
Edible paper, lemon juice, and hair dryers.
My threat model is not that big :)
I guess you’re not a furry then.
licks the edible paper, but it tastes like plant
meows
